Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/naUY0SzIwuQGBo3MUFRqnfBb-v0.roa
File: naUY0SzIwuQGBo3MUFRqnfBb-v0.roa (raw, json)
Hash identifier: X/RkJNFTk8LM7sj7gl3rf4sei4niJO2mmBCzAvA+htU=
Subject key identifier: 9D:A5:18:D1:2C:C8:C2:E4:06:06:8D:CC:50:54:6A:9D:F0:5B:FA:FD
Certificate issuer: /CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Certificate serial: 031DAFA0
Authority key identifier: 34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/naUY0SzIwuQGBo3MUFRqnfBb-v0.roa
Signing time: Sat 01 Jan 2022 13:59:23 +0000
ROA not before: Sat 01 Jan 2022 13:59:23 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 212951
IP address blocks: 45.153.10.0/24 maxlen: 24
45.153.11.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 52277152 (0x31dafa0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=347b487848fff63533d87c324ecc51c2c3ea2adb
Validity
Not Before: Jan 1 13:59:23 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=9da518d12cc8c2e406068dcc50546a9df05bfafd
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9f:46:82:81:34:4d:70:43:e9:1c:0e:29:33:0d:
1d:6a:00:87:3f:bf:fd:f7:0c:7d:1e:6b:63:c9:48:
51:26:58:32:f0:16:65:b7:35:e5:b0:13:45:37:a9:
76:3a:d2:89:5c:bc:74:90:63:ac:14:49:0b:e8:5c:
37:96:d7:05:e8:e9:92:69:61:e8:b7:b2:6a:2e:8f:
46:42:90:13:b7:d9:21:5d:21:c2:34:33:c9:a4:4d:
e7:8a:3c:5a:6a:6d:0e:2f:f1:f3:4a:67:5e:d7:14:
ea:0d:bc:26:2b:ff:87:3b:c0:d8:0c:14:11:0b:fd:
1c:2c:9b:b2:da:c7:fd:9c:e3:d3:4d:1e:42:2c:ed:
df:b6:52:a7:d6:08:61:fc:8c:a9:19:ba:1b:66:ed:
19:a9:33:3c:df:7a:fc:96:b0:a9:20:49:99:d2:d2:
f4:d4:0c:fa:db:1e:1a:0c:0b:ea:e3:bd:39:98:59:
fb:82:21:1a:e0:8b:71:21:b4:2a:b1:a1:46:e0:d4:
5c:c8:0f:06:8c:96:ea:d5:b9:3e:bb:11:e5:32:3e:
2d:db:06:5a:17:1b:3d:43:ce:d1:7d:b3:92:84:51:
2b:cf:a2:71:12:78:91:47:f6:07:f4:6e:93:48:af:
15:db:08:3c:71:ae:ce:9b:c1:51:b0:f2:30:4c:d0:
5a:e3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9D:A5:18:D1:2C:C8:C2:E4:06:06:8D:CC:50:54:6A:9D:F0:5B:FA:FD
X509v3 Authority Key Identifier:
keyid:34:7B:48:78:48:FF:F6:35:33:D8:7C:32:4E:CC:51:C2:C3:EA:2A:DB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/NHtIeEj_9jUz2HwyTsxRwsPqKts.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/naUY0SzIwuQGBo3MUFRqnfBb-v0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/27/bc7122-4d1b-46a7-aecb-230b3b72a175/1/NHtIeEj_9jUz2HwyTsxRwsPqKts.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
45.153.10.0/23
Signature Algorithm: sha256WithRSAEncryption
2b:33:07:18:06:a2:54:3f:f9:98:77:ec:08:d5:f4:cc:fe:52:
c2:c1:80:fa:2b:1e:65:0f:ee:81:73:ba:09:20:c4:7c:3e:7e:
23:71:7a:58:cf:b0:b8:2a:4e:8f:1d:95:04:e3:63:44:d6:d9:
d5:76:3b:b5:87:3c:d6:67:ae:71:10:3c:2a:f4:c6:aa:2c:ab:
4e:59:06:83:e2:af:56:49:e3:58:84:62:f8:d8:72:9c:bf:ab:
cd:8e:cb:af:b8:96:87:a8:73:33:89:ca:a0:19:7c:c2:69:94:
e9:41:a6:1b:42:74:44:9a:2d:79:b9:df:6f:14:5d:38:d7:c1:
14:7e:4f:e6:83:01:fe:72:08:b6:2d:6d:d2:fb:a3:1a:a0:a2:
9c:83:26:4d:10:cf:2c:d7:ff:fe:be:75:0f:1c:07:d9:fc:8a:
2c:86:36:82:bf:2c:d2:e6:7a:03:ab:39:e6:04:6a:73:5a:8d:
9e:af:cf:c8:ee:b6:39:09:3d:e4:ab:de:7f:65:05:3c:ff:ee:
45:9c:7c:82:44:60:db:43:bf:45:9e:ce:3d:5b:9a:c8:fb:33:
6e:e1:12:55:8f:d2:53:4c:d9:23:93:fe:29:92:93:65:83:85:
cc:16:da:ef:fe:eb:25:18:75:9d:cb:68:3c:fb:5a:a3:38:93:
16:5f:29:1e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:20 2023 by rpki-client on console-ams.rpki-client.org